"A significant flaw in the PRNG implementation for the OpenSSL
FIPS Object Module v1.1.1 (certificate #733,
has been reported by Geoff Lowe of Secure Computing Corporation.
Due to a coding error in the FIPS self-test the auto-seeding never
"That means that the PRNG key and seed used correspond to the
last self-test. The FIPS PRNG gets additional seed data only from
date-time information, so the generated random data is far more
predictable than it should be, especially for the first few calls